machineaddict
Reputation: 3236
Block ips with iptables from list with comments
I have the following ip blocking list:
123.151.149.222#China Telecom TIANJIN, CN
91.188.124.0/23#Hosting Company, PL
134.145.0.0/16#Shell Information Technology International, CN
134.146.0.0/15#Shell Information Technology International, CN
I want to block those ips with iptables like this:
BANNED_IPS=$(egrep -v -E "^#|^$" /etc/blocked.ips.list)
for ip in $BANNED_IPS
do
iptables -A INPUT -s $ip -m comment --comment "$comment" -j DROP
done
Example: where $ip should be 123.151.149.222 and $comment should be China Telecom TIANJIN, CN. And, yes, I know the above script doesn't work. I would like the script to be like the one above.
Question: How can i achieve this?
Upvotes: 0
Views: 381
Answers (1)
Barmar
Reputation: 782498
IFS='#'
egrep -v '^#|^$' /etc/blocked.ips.list |
while read ip comment
do
$BANNED_IPS =A INPUT -s $ip -m comment --comment "$comment" -j DROP
done
Explanation:
IFS='#'
changes the shell's field separator, used by read and word-splitting after variable expansion.
Upvotes: 1
Related Questions
- How to quickly add rules to iptables from blocklists?
- How to launch a script for a list of ip addresses (bash script)
- Automate whitelisting ip addresses in iptables via bash
- IPTables Script to block Concurrent Connections
- How can I change iptable entries using bash script?
- Bash script, need help for loop
- How do I use bash to bulk add a file full of IP blocks to IPTables
- How to add multiple ips to a iptables shell script?
- Adding my current IP to whitelist on iptables?
- Use Sed or Awk to add "deny from all " to a list of IP addresses